firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 00:26:51 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jeCMvTasGjT1ozMuVf2no_qSePbGE24xCK8qnKmFnvCGkCF9QVJl9Q==
Age: 2817
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9683
Expires: Thu, 01 Sep 2022 03:55:11 GMT
Date: Thu, 01 Sep 2022 01:13:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mGPWkjxt1eYXXPyagueq89HkzFHD9yLEr5NqLdMakWTmjJkKiDvL7g==
age: 82004
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Sep 2022 01:13:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 01 Sep 2022 00:17:12 GMT
Expires: Thu, 01 Sep 2022 00:50:10 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6tlWymCr5j4-HqqMVOEonlDG2n2PHPEYK-dRJHP20d-GEI9NXhJeSQ==
Age: 3396
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4087
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:13:49 GMT
Last-Modified: Thu, 01 Sep 2022 00:05:42 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.47.107101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.47.107:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: V0VwR0gy6AlbVUQF3mW1JA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FyqRJaoGybCMcl8Q89VsXT9jO4s=
www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
107.180.4.135200 OK 21 kB URL HTTP/1.1 www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2726)
Hash 93031c14c20280bddd5734b8a01b70c1
266018b1abae06f48fa57e4bd3d8c082f06bca32
0a8858d8d4e14f0ad70a7e4dbc81f571980280a83acfa8533af46751a011781d
Analyzer Verdict Alert fortinet Phishing
GET /techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/ HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:48 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.bayislistings.com/xmlrpc.php
Link: <http://www.bayislistings.com/wp-json/>; rel="https://api.w.org/", <http://www.bayislistings.com/?p=24202>; rel=shortlink
Set-Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20815
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
www.bayislistings.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6
107.180.4.135200 OK 623 B URL HTTP/1.1 www.bayislistings.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 9e3f8f252465b6106c5aec804d2d3d36
c5b74d79a69e2989e98bd231a2d43c6ab9229f97
7bbba87c71a99954bd443bc63cc4b9f71b3fb17c462c43cbd1b767fa0d5fd357
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2017 21:25:00 GMT
ETag: "82a0acd-630-54650eeb94300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 623
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.bayislistings.com/wp-content/themes/houzez/css/font-awesome.min.css?ver=4.7.0
107.180.4.135200 OK 7.1 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/css/font-awesome.min.css?ver=4.7.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (30837)
Hash 2a2c987c48fb65bb0e78fa2a37120537
ede7a4d5da37f053251e8b8a33be2a23a660473f
3d3136cdfced0eee9b7766b7a17a591f6fb3ba480e71b8930acbea4db4ab71d1
GET /wp-content/themes/houzez/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Apr 2017 07:23:46 GMT
ETag: "82a0e9f-7917-54c5228050480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7052
Keep-Alive: timeout=5
Content-Type: text/css
www.bayislistings.com/wp-content/themes/houzez/css/all.min.css?ver=1.5.0
107.180.4.135200 OK 14 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/css/all.min.css?ver=1.5.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (28998)
Hash 54da6358935bfd3e578b1cf76594eaeb
8cfaeaa47463840ed4d6915e27217ec8e74772ab
79dc9c070b81c73f2b3d724f86f78dd0c26d6abb9c8a83ba24f89af127673601
GET /wp-content/themes/houzez/css/all.min.css?ver=1.5.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Apr 2017 07:23:46 GMT
ETag: "82a0ea0-11e18-54c5228050480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14106
Keep-Alive: timeout=5
Content-Type: text/css
www.bayislistings.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1.5
107.180.4.135200 OK 37 kB URL HTTP/1.1 www.bayislistings.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1.5
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (27184), with CRLF line terminators
Hash 031f682fb5904f4641d725ce03b10675
d2fa0dabe710c99a2f0d3b7f6d7d22307f48df9d
c91a10a7f8638dcbd190dfc629bfeb67441f55581aecff3c5741d84b2ae966c6
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1.5 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2017 21:49:13 GMT
ETag: "8281a0d-1a406-5465145544840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 37356
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
107.180.4.135200 OK 4.0 kB URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 17 Jan 2017 21:13:29 GMT
ETag: "82a1118-2748-54650c5897040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5
Content-Type: application/javascript
www.bayislistings.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1.5
107.180.4.135200 OK 17 kB URL HTTP/1.1 www.bayislistings.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1.5
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32026), with CRLF line terminators
Hash 5f13b7024037fbec55bf699b64291676
8a86f42068e02d9446693297afeb6ed33347c988
b59da6c8b97afdac66e58faa3a1b6f70ec1313e36ad882bc4669439e0eb26746
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1.5 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 17 Jan 2017 21:49:13 GMT
ETag: "8281a0f-f3bd-5465145544840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17259
Keep-Alive: timeout=5
Content-Type: application/javascript
www.bayislistings.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
107.180.4.135200 OK 5.9 kB URL HTTP/1.1 www.bayislistings.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (14900)
Hash ebcf9ad4a94d5c31649dd4515ad0c7c0
e219102aa3fe113876fd76b578f9ea142d67d967
5af8e42123fc03e9a53e6fe91d95c64591e63d3c1f27703a24966154d7784747
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2017 21:25:00 GMT
ETag: "82a0ac1-3b90-54650eeb94300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5860
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6
107.180.4.135200 OK 3.3 kB URL HTTP/1.1 www.bayislistings.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 14abd46ed7edaad64f931e3f2178bc25
5e72dc8defc7b0a44375916e0509971c3696dd74
279728277b50fa6e3197334d2ce694971edf9b0ffce4c328e9b23b8c523068fa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2017 21:25:00 GMT
ETag: "82a0ac0-2f4a-54650eeb94300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3263
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-content/themes/houzez/js/bootstrap.min.js?ver=3.3.5
107.180.4.135200 OK 9.7 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/js/bootstrap.min.js?ver=3.3.5
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32034)
Hash d65629b2dd7605b5a3da65584ad3c2f9
d9ac40b145336b36429e79d6759c8d7550286c58
1f34a7a5ac5a9ddbc3759a0e04f24ddd8c30ba27dae923e44dc9b191674740a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/houzez/js/bootstrap.min.js?ver=3.3.5 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 04 Apr 2017 07:23:49 GMT
ETag: "82a0c19-8fd0-54c522832cb40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9745
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9028
Expires: Thu, 01 Sep 2022 03:44:18 GMT
Date: Thu, 01 Sep 2022 01:13:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9028
Expires: Thu, 01 Sep 2022 03:44:18 GMT
Date: Thu, 01 Sep 2022 01:13:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9028
Expires: Thu, 01 Sep 2022 03:44:18 GMT
Date: Thu, 01 Sep 2022 01:13:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9028
Expires: Thu, 01 Sep 2022 03:44:18 GMT
Date: Thu, 01 Sep 2022 01:13:50 GMT
Connection: keep-alive
www.bayislistings.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
107.180.4.135200 OK 1.8 kB URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3704)
Hash 8681c8c59fe450daeacc2f499e351dfe
1bedefb4c8fa62628816eaeea85677d637a6e4e0
d2160a6f66510d16512fd1fd387aee7d3763f0b4799273125faa777128dc5430
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 10:42:30 GMT
ETag: "82a113a-f59-5c00085314446-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1811
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba98f63d9bef7deebb9a8d1b3126d396
d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef
b8f6c1c6b34ec452a6aa3090c30ebf3a68cb3b4d45a7b134ed32e1959f4f0682
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10777
x-amzn-requestid: 2e9a081f-2ae4-49b9-b9d4-79cae2b7eae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3kRFiJIAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e7-2f9eec0b239ceb6d617431b6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9ACDg_Mxbl2GSEDeDAqdMlKjkCiMyWExvCUa2jHquaQy6U-4EJtbQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:19 GMT
age: 12991
etag: "d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bayislistings.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
107.180.4.135200 OK 11 kB URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (35951)
Hash a5a458d0df3b4eb65571b6a97aec42e0
adec56bbaa570ac416acb4859c4ffa085a2b79a8
d1cfe94c8575c3968984d9c85c43576d6c440dedf8f811472e067a1980b9cfbd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 10:42:30 GMT
ETag: "82a112c-8d50-5c0008532b75f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10794
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F761bec2c-917c-4d76-b30f-d952432e80ae.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F761bec2c-917c-4d76-b30f-d952432e80ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6f2d3a00d6d7da233136a2f97288438
db7ad928f5cb3478e16a4827aa1324d5f0441aee
e52e34961bd591a719e421a2c42681ae4e7f53162e708c0e1cd23a032b8c1461
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F761bec2c-917c-4d76-b30f-d952432e80ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8243
x-amzn-requestid: cf7ca552-b255-4629-8115-9dd951f9c4c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i4EKBoAMFxPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-38f269ff114135be10791fd7;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cgMiw354TldS7AQAID-oF-ueF9g9HBslGnMLTjOXiU4Sf6LTBVkILg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:41 GMT
age: 12969
etag: "db7ad928f5cb3478e16a4827aa1324d5f0441aee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73e1c8ca-5a00-4132-9227-428b673cb95c.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73e1c8ca-5a00-4132-9227-428b673cb95c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d40814e3031938ca809a845d49522370
a432b526b80fee28e02235e0253049932156d0cf
1b06b133f41ea116e9273134618879813ca00c4262cb8de62eeb3b6d80385bdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73e1c8ca-5a00-4132-9227-428b673cb95c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8480
x-amzn-requestid: 445b9d68-37f4-40e4-81dc-99f322efd62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xpeg9FTzoAMFvog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d446c-684cf12c12a484483ce1de64;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 22:57:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xNp1H8tpxzhXEbdhopbdKFIN4o1dTnhkqSSeXWxTEV_xI6WZhmJMFw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:51:54 GMT
age: 12116
etag: "a432b526b80fee28e02235e0253049932156d0cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 043263cdba253c3eb4bfa33c95e8ca21
6d814e56d87e2579e51139759fa7dfb8195a6529
9c7cf679c9a6a0d0a2c75a85b13d8407a5e0fe2448d73fced51b45a3e701e9c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8044
x-amzn-requestid: 8ea16c8b-f0aa-4ce9-a99d-8e59c51ffb8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3j7Ge9IAMFQBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e5-6762d09b569221944f9b7870;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tZWKpWZnFUVhefoWK-AwAYKOsmAcMhTmPXEyWp0BJPKfhgooGpI6xQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:52:58 GMT
age: 12052
etag: "6d814e56d87e2579e51139759fa7dfb8195a6529"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 374a3607782ca6a016be0fbfa8d38f7d
823d7261c40f8c5bf65a7e59544da90d88546c1f
d9ab7b8bfe0389c5fda3ad06b5c913d470d89f5921fc950a8c7245d512dc1b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9593
x-amzn-requestid: 16a73c03-8888-44cb-a193-551632785ef3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt1fGFXnoAMFWJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f02c6-4d89d9310800fa0d726d7897;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 06:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rk5TPlJMuzx_RxyADDnAamrWWTB20LH0LvzIqLvLyBod2FzAenevGA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:11 GMT
age: 50387
etag: "823d7261c40f8c5bf65a7e59544da90d88546c1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382fbb98-12b7-491f-a8c7-63afff403010.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382fbb98-12b7-491f-a8c7-63afff403010.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0d8ed4b8bda662c244b9d26cf143147
151395a70faa075762664fc6cd52a65004b5c81c
49b381815612b7ecb021f243438aae99e399993d91fb38bf5d7bb3d357519d6a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382fbb98-12b7-491f-a8c7-63afff403010.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9152
x-amzn-requestid: f8805e4a-3e8d-4acc-91a2-16dfd461afc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4mgHKlIAMFR4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd48f-368e07d93f3b3f3573db19d6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:37:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3XiUGyXS-JRwGTOzn51m425ynmb7aQsrXErnBJBcJGP1CAV0dVDv7w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:41 GMT
etag: "151395a70faa075762664fc6cd52a65004b5c81c"
content-type: image/jpeg
age: 12969
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bayislistings.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
107.180.4.135200 OK 2.5 kB URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6608)
Hash 71cd44715ffecd7f28c48abb2470d730
f0a263f1ac3ff0d28091bc824a275c08cbef4f35
0138a741ed428dc1b716367d2bbc503bd372469468b31322fe7d531c91d52882
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 10:42:30 GMT
ETag: "82a1124-1ab0-5c000852f2d1e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2548
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
107.180.4.135200 OK 991 B URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2927)
Hash 0a9656f23585bbaa3376e904fa025a7f
37b57e7fa8a0ab85bc257573847acc1b4fa94dcc
4c9c329df2e0b3306dd4838ce24ae58eb441bcf4c6067899a97323c8d688c59d
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 10:42:30 GMT
ETag: "82a113c-c46-5c000853134a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 991
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
107.180.4.135200 OK 585 B URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (985)
Hash 2a4a6faccfa5b512e63468b64b0c9969
f4a9aa5290d1598b2ffb4715ba1038619fcd7b2e
1450980233347d0b873c36db1d616f8f7fc22172780a78530b368612ce3b9a63
GET /wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2017 21:13:28 GMT
ETag: "82a1146-49b-54650c57a2e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 585
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-content/themes/houzez/js/plugins.js?ver=1.5.0
107.180.4.135200 OK 82 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/js/plugins.js?ver=1.5.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32068)
Hash 1caa7e6d61058aab938ce18e6166d12c
92fc6785d39b37f341a6c8b4030ad3992de53cd5
86af5bbccd494e0f3fae3ef67c78c82d8bc9c1efe75c8a9bb583c41bfb521905
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/houzez/js/plugins.js?ver=1.5.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 04 Apr 2017 07:23:48 GMT
ETag: "82a0c1a-49ea8-54c5228238900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.bayislistings.com/wp-content/themes/houzez/js/custom.js?ver=1.5.0
107.180.4.135200 OK 12 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/js/custom.js?ver=1.5.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 2db89e80fbf9ce7cdc6d76e85e46fe2a
e75685788546292c80d205d7b4c8805c66604e67
2ba9efe2f7214230b4bd03ed5da5d708f8675af66d09a770081cb2d1cc0a4e01
GET /wp-content/themes/houzez/js/custom.js?ver=1.5.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 04 Apr 2017 07:23:49 GMT
ETag: "82a0c22-11701-54c522832cb40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12265
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-content/themes/houzez/js/houzez_ajax_calls.js?ver=1.5.0
107.180.4.135200 OK 22 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/js/houzez_ajax_calls.js?ver=1.5.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 4805168e1b4d657bb7ddfbada070318a
c7fce45be193caa40568919a7c6c6654eb5d94ba
285a28a29d0f64b916173c29bb37cbe8a697f5e4cb25be86b909d9e684317594
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/houzez/js/houzez_ajax_calls.js?ver=1.5.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 04 Apr 2017 09:57:07 GMT
ETag: "82a0c8b-2a2e8-54c544c7122c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22380
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
107.180.4.135200 OK 735 B URL HTTP/1.1 www.bayislistings.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1386), with no line terminators
Hash d2b60c1231015fbb2cfb0680a4fdfc87
2964b5bc32aad38d53ba3063503711c5cb6006ed
a83053c9a437c08c7d62ae9b07cf680d43a3ad129de64633eee91a860fab7844
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=4.7.24 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 10:42:29 GMT
ETag: "82a101a-56a-5c00085243c52-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 735
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.bayislistings.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1.5
107.180.4.135200 OK 7.0 kB URL HTTP/1.1 www.bayislistings.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1.5
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (29256), with CRLF line terminators
Hash 606eced6351f068f91f98f4a59fee316
ecfe7f6c053c50f5c8b7ed6b151462e521d4fd85
c41871327c0d7f2aaaa552ef7503850a0d330201cd764e1b7c769521c5733876
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1.5 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2017 21:49:13 GMT
ETag: "8281a16-73bd-5465145544840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7024
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.bayislistings.com/wp-content/themes/houzez/css/bootstrap.min.css?ver=3.3.5
107.180.4.135200 OK 20 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/css/bootstrap.min.css?ver=3.3.5
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65271)
Hash ec33d821d33738f1f0d12a16d4affe07
ef6ce4e66b5bc214e105c3bb5db4f536133eaeab
528d55a7b99bdff3c73e374d99d675508a2b7c546d9750c171e5bbba0ca2ce73
GET /wp-content/themes/houzez/css/bootstrap.min.css?ver=3.3.5 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 04 Apr 2017 07:23:46 GMT
ETag: "82a0ea1-1e649-54c5228050480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20069
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.bayislistings.com/wp-content/themes/houzez-child/style.css?ver=1.5.0
107.180.4.135200 OK 2.2 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez-child/style.css?ver=1.5.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (478)
Hash 5f8d78121fb17c1bb87914c932856425
6c4880c2304a68b47fb13fa7fef4f2c295c2884c
e69a7ba81991c1a11fbfefb8a7504fddf1d60de98e480d3d02c11f118cd0e06c
GET /wp-content/themes/houzez-child/style.css?ver=1.5.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Tue, 30 May 2017 10:28:14 GMT
ETag: "82a0af6-1b98-550bb42d8d36c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2160
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.bayislistings.com/wp-content/themes/houzez/css/main.css?ver=1.5.0
107.180.4.135200 OK 75 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/css/main.css?ver=1.5.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1711)
Hash b7c0cf777fa5d814a92533a5842f92a8
f0d949a4c88ed009c1ce13593de227d1727a7ec6
ef2a9e4b3170d24dbeda135a973ebd7743c28e492b798850d09f331b6396d299
GET /wp-content/themes/houzez/css/main.css?ver=1.5.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Fri, 05 May 2017 06:15:22 GMT
ETag: "82a0e8d-9a089-54ec0d07b9280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.bayislistings.com/wp-content/themes/houzez/style.css
107.180.4.135200 OK 2.0 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/style.css
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (478), with CRLF line terminators
Hash 88c32fac6ff2c6ebb238eae91e84ac3b
06f93211eea5bec878c6842514ec8a67bfc10361
626bc4b9ac0ab2dc63723135725cec6d4f2933aa3b6f1aceaf425034d907d261
GET /wp-content/themes/houzez/style.css HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/wp-content/themes/houzez-child/style.css?ver=1.5.0
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Last-Modified: Sat, 29 Apr 2017 05:45:39 GMT
ETag: "82a0bbd-1830-54e47b328e6c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1988
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.bayislistings.com/wp-content/uploads/2017/02/logo.png
107.180.4.135200 OK 12 kB URL HTTP/1.1 www.bayislistings.com/wp-content/uploads/2017/02/logo.png
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 388 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash 37bdbecf4752f11f67d309358e936183
f3861c406592468f6c339836bf3c5cfe12676793
97c545b007eb602702c8cb165e0889c89fa1c25f06b4d607adee0f0a5dc5169e
GET /wp-content/uploads/2017/02/logo.png HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:51 GMT
Server: Apache
Last-Modified: Wed, 01 Feb 2017 03:57:48 GMT
ETag: "8280754-3091-547700d43a700"
Accept-Ranges: bytes
Content-Length: 12433
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.bayislistings.com/wp-content/uploads/2017/01/White-logo.png
107.180.4.135200 OK 6.3 kB URL HTTP/1.1 www.bayislistings.com/wp-content/uploads/2017/01/White-logo.png
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 418 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e3cf5f104b6bae8bf4f92987487a0e5
b78ceff4f4f3912404681f67765e4cc4a66154d1
31013838aeaa563810c024a82a39b98481158d15ed947f75abd31600802904cf
GET /wp-content/uploads/2017/01/White-logo.png HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2017 22:15:10 GMT
ETag: "8280748-189b-54665bff99780"
Accept-Ranges: bytes
Content-Length: 6299
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.bayislistings.com/wp-content/themes/houzez/fonts/fontawesome-webfont.woff2?v=4.7.0
107.180.4.135200 OK 77 kB URL HTTP/1.1 www.bayislistings.com/wp-content/themes/houzez/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/houzez/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.bayislistings.com/wp-content/themes/houzez/css/font-awesome.min.css?ver=4.7.0
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:51 GMT
Server: Apache
Last-Modified: Tue, 04 Apr 2017 07:23:45 GMT
ETag: "82a0ed5-12d68-54c5227f5c240"
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
4.bp.blogspot.com/-nPje7VRoAis/Vc0_dJ5AFsI/AAAAAAAAPl8/KcKZ4YqBTrQ/w1200-h630-p-k-no-nu/OracleFormReport2xml.png
142.250.74.161200 OK 45 kB URL HTTP/1.1 4.bp.blogspot.com/-nPje7VRoAis/Vc0_dJ5AFsI/AAAAAAAAPl8/KcKZ4YqBTrQ/w1200-h630-p-k-no-nu/OracleFormReport2xml.png
IP 142.250.74.161:0
File type PNG image data, 469 x 246, 8-bit/color RGB, non-interlaced\012- data
Hash 02e4db1028a07704fb2c9543269c1144
3253317e3da3ca93961d2409d7c646e38060e4c8
1220d465b37c52bc482ea065bdf9f223eaa3f0e1af29aa3cfdcabc9abb9d8794
GET /-nPje7VRoAis/Vc0_dJ5AFsI/AAAAAAAAPl8/KcKZ4YqBTrQ/w1200-h630-p-k-no-nu/OracleFormReport2xml.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3e60"
Expires: Fri, 02 Sep 2022 01:13:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="OracleFormReport2xml.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 01 Sep 2022 01:13:51 GMT
Server: fife
Content-Length: 44719
X-XSS-Protection: 0
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 1183fe53fb727123d92cab34236083c0
ea064c50432c66cddf71d6fa75361cbf185c66ee
cf0afb4836f6d9935ff02adf47b278e88c14a2f92f7538f480428609e88c15a7
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 492d0880cbb389fb21460550529ef77a
ETag: "caef09378cd0027ef1906e2f48a094ba"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Thu, 01 Sep 2022 01:14:11 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: EYP+U/tycSPZLKs0I2CDwA==
X-FB-Debug: oAjYBgyXIWCJqxjfh8IuGBRcqz9qWSND7Ds+1IOZoDAjjL2K+mQqMqivKYx/Dw9iuDU1l+9Vp53eDlAxRMM8ag==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Thu, 01 Sep 2022 01:13:51 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:13:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js
142.250.74.42200 OK 6.8 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (1322)
Hash e50618b92776b0c2829143cad8f3659f
b90c156c67e5768cd7ccf5e7aad127385f5e2d78
4b3bc416d421c1eebce4174809a8620d6f933507c5fdbd9dd35443e1a28a04f3
GET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bayislistings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 6791
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 08:02:38 GMT
expires: Tue, 29 Aug 2023 08:02:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 234673
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:13:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:300,500
142.250.74.10200 OK 564 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,500
IP 142.250.74.10:0
Hash 254a3dcfd6686caced973a443d8155dc
35ce952361dfcb4d0a88b89d6cabb831cda945dc
65c893c3384a41fbf47ca2cd87a6213cb5e1f0f698a55aea4a40fa2f864f46df
GET /css?family=Roboto:300,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 01 Sep 2022 01:13:51 GMT
Date: Thu, 01 Sep 2022 01:13:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.bayislistings.com/wp-content/uploads/2017/01/favicon.png
107.180.4.135200 OK 1.2 kB URL HTTP/1.1 www.bayislistings.com/wp-content/uploads/2017/01/favicon.png
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a3250881817062491e9a98f55a40eed
877b31b227296eb7ccabe2f3311aaad02205018d
8a3e3267b160dfa52d86a472d93c40adba7f6a6d9265985b0d74edcf617d6cef
GET /wp-content/uploads/2017/01/favicon.png HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2017 22:21:56 GMT
ETag: "828070d-4d5-54665d82ca900"
Accept-Ranges: bytes
Content-Length: 1237
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
0.gravatar.com/avatar/3ad71bb6433516b7334a51acefdba4d7?s=40&d=mm&r=g
192.0.73.2200 OK 983 B URL HTTP/1.1 0.gravatar.com/avatar/3ad71bb6433516b7334a51acefdba4d7?s=40&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 40x40, components 3\012- data
Hash 75dfb23da6e6730d066e698773b3fd45
3b45961e6fcf7708b89f59d28b18edc96a641016
ca775cd8ab837239f9497e8afe90403d78cb37581c0adfe4003012d24bea020e
GET /avatar/3ad71bb6433516b7334a51acefdba4d7?s=40&d=mm&r=g HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:13:51 GMT
Content-Type: image/jpeg
Content-Length: 983
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <https://www.gravatar.com/avatar/3ad71bb6433516b7334a51acefdba4d7?s=40&d=mm&r=g>; rel="canonical"
Access-Control-Allow-Origin: *
Content-Disposition: inline; filename="3ad71bb6433516b7334a51acefdba4d7.png"
Expires: Thu, 01 Sep 2022 01:18:51 GMT
Cache-Control: max-age=300
X-nc: MISS arn 4
Accept-Ranges: bytes
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bayislistings.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 21:40:08 GMT
Expires: Thu, 31 Aug 2023 21:40:08 GMT
Cache-Control: public, max-age=31536000
Age: 12823
Last-Modified: Wed, 11 May 2022 19:24:45 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bayislistings.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15740
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 22:09:09 GMT
Expires: Thu, 31 Aug 2023 22:09:09 GMT
Cache-Control: public, max-age=31536000
Age: 11082
Last-Modified: Wed, 11 May 2022 19:24:56 GMT
Content-Type: font/woff2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 345c982ec6af16250abc3cfceefc2aca
66711b2640ee505b079e907bbce2233cad0b687c
b3bac8ebd249787713bae59dd97a45da5d9728d2615a91fa9778c3fc20a8f1e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1569
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:13:51 GMT
Last-Modified: Thu, 01 Sep 2022 00:47:42 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=3e82e7c40464f44fa06f0fe7b6524ca3
31.13.72.12200 OK 86 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=3e82e7c40464f44fa06f0fe7b6524ca3
IP 31.13.72.12:0
File type ASCII text, with very long lines (13115)
Hash b8826e024fcef3ce512ca75e52096bf9
064ca77b8790450de0d9a5bdc052f3def2ee3d7f
c9028335a7901c12018f1737e95632e58185e1c1d132b54296baa925e3e211f1
GET /en_US/sdk.js?hash=3e82e7c40464f44fa06f0fe7b6524ca3 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.bayislistings.com
Connection: keep-alive
Referer: http://www.bayislistings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 26278474f7feec6ca4801eb370c01ea7
etag: "b10589b91efe561fd94c45845cae89ae"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 01 Sep 2023 00:33:53 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: uIJuAk/O885RLKdeUglr+Q==
x-fb-debug: VydcHk3AASRs3SuBKPyKbjKJ2hFjO9mUdr9JSqxxzZMNfiBbzHzCb/fCfj3gRHiy+GSH7nsPqkst5ul+453f6w==
content-length: 86515
x-fb-trip-id: 1904183273
date: Thu, 01 Sep 2022 01:13:52 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
0.gravatar.com/avatar/3ad71bb6433516b7334a51acefdba4d7?s=60&d=mm&r=g
192.0.73.2200 OK 1.2 kB URL HTTP/1.1 0.gravatar.com/avatar/3ad71bb6433516b7334a51acefdba4d7?s=60&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 60x60, components 3\012- data
Hash d5770a381a4d0a3ec0f3cfef600a2de7
bf7a2c10ecdf58b3d56962f2bfed5e03e5b067fe
5cbf31f01d7d1ce4853bcd6cc64dbfd103d412ec14d8bcc4ebca3b35dc3f3b74
GET /avatar/3ad71bb6433516b7334a51acefdba4d7?s=60&d=mm&r=g HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:13:52 GMT
Content-Type: image/jpeg
Content-Length: 1186
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <https://www.gravatar.com/avatar/3ad71bb6433516b7334a51acefdba4d7?s=60&d=mm&r=g>; rel="canonical"
Access-Control-Allow-Origin: *
Content-Disposition: inline; filename="3ad71bb6433516b7334a51acefdba4d7.png"
Expires: Thu, 01 Sep 2022 01:18:52 GMT
Cache-Control: max-age=300
X-nc: MISS arn 2
Accept-Ranges: bytes
www.bayislistings.com/wp-admin/admin-ajax.php
107.180.4.135500 Internal Server Error 0 B URL HTTP/1.1 www.bayislistings.com/wp-admin/admin-ajax.php
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 42
Origin: http://www.bayislistings.com
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 500 Internal Server Error
Date: Thu, 01 Sep 2022 01:13:51 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Pragma: no-cache
Access-Control-Allow-Origin: http://www.bayislistings.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
www.bayislistings.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
107.180.4.135200 OK 0 B URL HTTP/1.1 www.bayislistings.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Sep 2019 10:10:15 GMT
ETag: "82a1149-17a6a-591cb8720ab74-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5
Content-Type: application/javascript
www.bayislistings.com/studio-d-a2-testheft-pdf-work-free-download/
107.180.4.135200 OK 0 B URL HTTP/1.1 www.bayislistings.com/studio-d-a2-testheft-pdf-work-free-download/
IP 107.180.4.135:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /studio-d-a2-testheft-pdf-work-free-download/ HTTP/1.1
Host: www.bayislistings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://www.bayislistings.com/techsmith-snagit-v12-2-2-build-2017-incl-keygen-tsz-tordigger-serial-key-keygen/
Cookie: PHPSESSID=5b401dv8n3qqkasee6a2lhe242
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:13:52 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.bayislistings.com/xmlrpc.php
Link: <http://www.bayislistings.com/wp-json/>; rel="https://api.w.org/", <http://www.bayislistings.com/?p=24205>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20551
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8